holm/shorewall_code
1
0
Fork 0
forked from extern/shorewall_code
Code Pull Requests Activity

Added BLACKLISTNEWONLY

Browse Source 
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@766 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
This commit is contained in:
teastep 2003-10-11 16:13:52 +00:00
parent 67ad01a56f
commit 84486d9115
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
Shorewall/releasenotes.txt
View File

@ -51,12 +51,12 @@ New Features:
space. This is for compatibility with p2pwall. space. This is for compatibility with p2pwall.
2. A BLACKLISTNEWNONLY option has been added to shorewall.conf. When 2. A BLACKLISTNEWNONLY option has been added to shorewall.conf. When
this variable is set to "Yes", the blacklists (dynamic and static) this option is set to "Yes", the blacklists (dynamic and static)
are only consulted for new connection requests. When set to "No" are only consulted for new connection requests. When set to "No"
(the default if the variable is not set), the blacklists are (the default if the variable is not set), the blacklists are
consulted on every packet. consulted on every packet.
Setting this variable to "No" allows blacklisting to stop existing Setting this option to "No" allows blacklisting to stop existing
connections from a newly blacklisted host but is more expensive in connections from a newly blacklisted host but is more expensive in
terms of packet processing time. This is especially true if the terms of packet processing time. This is especially true if the
blacklists contain a large number of entries. blacklists contain a large number of entries.